Windows TA 5 Changes
Changes going from Splunk Add-on for Windows version 4.x to 5.x
splunk  community  windows  addon 
march 2019
Extended Search Reporting, v1.4 thanks to cerby on the Splunk Community Slack (dpaper@splunk.com)!
Extended Search Reporting, v1.4 thanks to cerby on the Splunk Community Slack (dpaper@splunk.com)!
splunk  community  search  monitoring 
march 2019
Windows Event Clean Up in Splunk
Some SEDCMD entries that can be used for reducing the size of WinEventLog:Security events
splunk  community  windows  eventlog 
march 2019
Notable Event framework in Splunk ES | Splunk
Splunk indexes and makes searchable data from any app, server or network device in real time including logs, config files, messages, alerts, scripts and metrics.
splunk  notable  es  search 
march 2019
Files · master · Rational Cyber / Syslog Tools for Splunk · GitLab
Our syslog monitoring, auto-sourcetyping, auto-timezoning app for Splunk
syslog  splunk 
november 2018
Rational Cyber / syslog-ng-configuration · GitLab
A useful syslog-ng configuration file that will organize incoming events into a directory tree that is quite friendly for Splunk monitoring.
syslog  splunk 
november 2018
Rational Cyber / Rsyslog Configuration · GitLab
A simple rsyslog configuration that's meant to act as an equivalent to our syslog-ng configuration to provide easy Splunk syslog collection.
syslog  splunk 
november 2018
Add asset and identity data to Splunk Enterprise Security - Splunk Documentation
Format the asset or identity list as a lookup in Splunk Enterprise Security
splunk  es  assets  identities 
may 2017
Install Add-ons
$SPLUNK_HOME/etc/apps/SplunkEnterpriseSecuritySuite/local/inputs.conf
splunk  ES  import  appprotection 
september 2014
« earlier      later »
7.2 addon aint animalcollective applause appprotection apps asian assets authority autolb automation av azure back backup basics beef bestpractices blacklist blob blown book bread breakfast bucket bundle burp cef chart cheatsheet checking chicken christmas cim cisco clothing coconut coffee coldbrew colocation colors commands community compatibility configuration connect cooked cookies correlation corrupt crockpot dafuq dashboards database datamodels datasets date dbx defense deployment distributed dma dns doge donna dressing drinks eggs endedwithoutdonekey es eventbreaker eventcodes eventgen eventlog eventstats expired exploit extremesearch f_this fieldaliases fields filter fishbucket fitbit fitness flop food forwarder found funny gif gifts glutenfree hec hotel hotsauce howsearchworks https hunting icap icecream identities iis image import indexes indexing indexingpipeline indicators inputs ips ipv4 ipv6 irc jboss jerky jmx join joomla journal.gz kvstore ldap linux lists lockpicking logging logos machinelearning macros mapreduce metrics.log mexican migrate mind mltoolkit monitoring mssql multisite music nist nmap nope notable nuts odbc onboarding oneeventperfile opsec osint paleo parsing passover payloads pentest performance pi pickles pony pooling pressurecooker problem props queues ravens reaction recipe recipes regex reindex remote reparse replication ring roles root salsa samples scifi screenshots script scripting search searchheadpoolin security segmentors service shell shit shortstory shp siem simplexml sizing skull snacks solved soup source sourcetyep spl splunk splunk_os_user sqli ssl staffing stateoftheunion steak storage streamstats stretching strftime strptime summary sweetpotatoes syslog sysmon system systemd teach test thinkpad thp threatlist threatmodelign timemodifier timestamps tls trackers transaction turtle tutorial udp ulimits unit unitfiles update urgency url usb usecase user users va veg video vim virtualbox wallets webservices weighttraining weirdal wifi wildcard windows wineventlog workout yeah

Copy this bookmark:



description:


tags: